NASTF Credentials: Convenience or Control?

Examining the Controversial New Proposal from the Automotive Industry's Task Force.

Jun 04, 2025

Early this past year in 2024, NASTF (The National Automotive Service Task Force) released a statement and new proposal, extending the reach and power of their secure arm, SDRM (Secure Data Release Model) which essentially governs locksmith tool access, thereby causing a massive online uproar. The new proposal would require all locksmiths and auto techs to register and obtain a NASTF VSP (Vehicle Security Professional) ID to use scan tools for key programming, immobilizer or security functions, and diagnostics.

The National Automotive Service Task Force (NASTF) is a 501 C6 not-for-profit organization which is made up of automakers, repair technicians, and other automotive industry professionals, and has over 45,000 members in the United States and Canada. It was founded in the year 2000 to assist in facilitating availability and access to security related information systems and to promote an equal playing field for all automotive service professionals. However, although NASTF’s aim is to ensure legal and safe access to security functions, there is no required cost to join, nor are there many barriers to entry and few who apply are denied.

A Brief History Lesson

In 2007, NASTF with the help of other organizations including ALOA (Associated Locksmiths of America), The National Insurance Crime Bureau, and more, established the first SDRM (Secure Data Release Model) in the automotive industry. Prior to that, SDRM’s were typically mostly used in intelligence organizations, but due to the security needs for immobilizer security codes and keycodes to prevent vehicle theft and protect the liability of locksmiths and auto technicians, one was developed specifically for the auto industry.

Updates were made to the SDRM over time, due to increasing security needs and rapidly changing technology in the automotive industry, and systems eventually became more strict and controlled. VSP (Vehicle Security Professional) IDs were then established, originally referred to as LSIDs (Locksmith IDs), required to ensure that the locksmiths and auto technicians were appropriately vetted to be professionals.

The Newest Update

Even though NASTF has been utilizing VSPs for some time now, it hasn’t been required by all locksmiths and auto technicians, and certainly not to the controlled extent that is now being proposed. The new, “Aftermarket Scan Tool Validation Program” outlines specifics which would require all locksmiths and auto techs to obtain a NASTF VSP ID for all scan tools when adding or replacing lost keys, accessing immobilizer functions, and any other security related process. The official stated purpose of which is to reduce vehicle theft, but its implications and added costs located in the fine print is what has some industry professionals heated and taking sides on the controversial topic.

“Its very clear to me that this is about control, not eliminating car theft. It’s giving all the power to a multi-million dollar organization.”

Whose Side Are You On Anyway?

Ah…the age old question. Aye or Nay? For or Against? Left Twix, Right Twix… Whose side are you on anyway?

Well, advocates for the new proposal are citing a few additional benefits beyond vehicle theft reduction, including limiting violent acts towards locksmiths who are targeted for theft of their tools, and further improving the marketplace by removing illegitimate business operations.

On the flip side, however… those who stand opposed to the new restrictions seem to have a much broader spectrum of reasons for why they do not support NASTF’s efforts.

“Being an auto locksmith in the United States shouldn’t require aligning your beliefs with and agreeing to “bylaws” that you may not agree with. NASTF would be a monopoly, and have the power to determine if YOU can make a living as a locksmith. Should one organization have that much power?”

Arguments are being made that NASTF would be monopolizing the industry and stripping away the freedoms of the working professionals through controlling who can work, what tools they can use, timeframes, and more. Other statements corroborate the idea that NASTF would essentially have all of the car keys and programmed remotes, and all of the data and information for every programmer across the U.S. on their servers. This could potentially spell disaster if they don’t have enough safeguards in place to protect that amount of confidential data. And while on the topic of data, many are also citing that the data showing increased cases of auto thefts across the country has failed to specify which cases can factually be attributed directly to the use of a scan tool, versus repossessions or a key fob left inside the vehicle, or some other method of theft, unrelated to the industry.

Then there are the details of the fine print of the VSP, which include additional fees and insurance requirements. Under NASTF guidelines, certified locksmiths are required to obtain insurance and raise their coverage to $1,000,000 general liability, effectively hurting the smaller, mom-and-pop shops, and leading many to believe that this new proposal is nothing more than protection for auto insurance industry profits.

Lastly, many are upset over the sneaky behavior of NASTF to pull such a power move without effective communication or considering the implications on the working-class professionals. They claim no democratic process or surveys were introduced, no prior press releases or tradeshow announcements were made. Many feel like NASTF has just pulled the rug out from under them and is forcing them to comply. I don’t know about you, but I’m still upset at U2, ever since they pulled this move back in 2014, forcing every iPhone user in the nation to automatically download their album. I refuse to listen to that band ever since!

Much Ado About Nothing

Whether you’re in support of NASTF on this matter, or opposed, I think many would most like to know, “What can we do about it?” So, here are some options and things to consider:

If you are in support of NASTF VSP ID requirements, I’d personally start there. Make sure you are effectively up-to-speed and have your credentials even before they become strictly enforced. This obviously gets you one step ahead in the game before the competition complies, either willingly or by mandate. Keep in mind, NASTF is not a government agency, nor are they directly profiting from this effort, as they are a 501 C6 organization and they are run by automakers and repair techs, who understand the industry and those who work in it.

In an official statement, Mo Ali at Lock Labs stated,

“The new NASTF SDRM platform and its reciprocal requirements are very real, and you should educate yourself on them to make quality decisions for your business. If you’re not a current NASTF member, visit their website and sign up for a free account. There is a wealth of information to be found there. Hit up YouTube and watch interviews or listen to podcasts featuring Donny Seyfer to better understand what is happening, why it’s happening, and what you should do to prepare for it. I have made an arrangement with NASTF to foster better communication between their organization and our industry, and we will soon have a NASTF informational portal on our new AutoKeyPros.com website.

I have made it my mission to advocate for my industry and friends who rely on locksmithing to provide for their families. After all, locksmithing also puts food on my table. My relationship with NASTF and my role in SDRM are much different than I could have imagined. All I had to do was put down my pitchfork for a minute and give it the attention it deserved. The automakers want this, entities within our Federal government want this, and they are both empowering NASTF to make it a reality.

As someone with privileged information, I can tell you that none of this signals the end of our industry or the death of our tools. We still have ample time to make our voices heard and to help direct the course of our collective futures.”

—Mo Ali, Lock Labs

Vive La Résistance

For those who are not taking this new information lightly and want to fight the good fight, I might suggest contacting your local organizations like ALOA, a U.S.-based member organization for locksmiths. ALOA has several divisions that are all dedicated to the safe practices of technicians and security professionals. Speaking out your concerns to these kinds of organizations can cause waves and have a greater effect than simply griping in an online chat forum.

You can also contact the manufacturers of your programmers. They could potentially establish their own criteria for certification, which could help to combat the “monopolized” movement of NASTF’s SDRM.

Lastly, remember there is strength in numbers. If you can get enough professionals on board to fight and lobby against the large organization, then all the power to you! It’s not an easy fight, but it has historically worked, time and time again. Vive la Résistance!

The Middle Ground

I think its safe to assume that this controversy isn’t going to end any time soon. So whichever side you choose to stand on, you should understand that things are likely to change one way or another, be it for better or worse. The auto industry, like so many others, is constantly moving in new directions, and the technicians and locksmiths will ultimately adjust.

An entire planet of musicians couldn’t stop streaming music from reshaping the industry, and though many of them do not make the same money they used to from the music itself, they simply found other means to offset the balance and produce income. What once was the product, now is the business card. But musicians are still generating wealth and doing what they do best. Locksmiths and auto technicians are no different. We are resilient and we will persevere, regardless of whatever challenges we may face, or whatever lock we have to pick to get the job done!

–Ryan Barbin, AKS